CVE-2023-34261
CVSS 3.1 Score 5.3 of 10 (medium)
Details
Published Nov 3, 2023
Updated: Nov 13, 2023
Summary
CVE-2023-34261 is a vulnerability affecting Kyocera TASKalfa 4053ci printers up to firmware version 2VG_S000.002.561. This issue enables attackers to identify valid user accounts by observing the error messages returned during a login attempt. Instead of the usual "falsch" (incorrect) error message, the printer returns a "nicht einloggen" (not logged in) message, revealing the existence of a valid username. This vulnerability poses a risk for unauthorized access to the printer and potential further exploitation.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Kyocera Corp